CVE-2023-53966

Critical CVSS: 9.3

SOUND4 LinkAndShare Transmitter 1.1.2 contains a format string vulnerability that allows attackers to trigger memory stack overflows through maliciously crafted environment variables. Attackers can manipulate the username environment variable with format string payloads to potentially execute arbitrary code and crash the application.

Vendor

Sound4

Product

Linkandshare Transmitter

CWE

CWE-134

Yayın Tarihi

2025-12-22 22:16:01

Güncelleme

2025-12-31 17:12:25

Source Identifier

disclosure@vulncheck.com

KEV Date Added

Kategoriler

CWE-134 Linkandshare Transmitter CRITICAL Sound4 2025

Referanslar

https://web.archive.org/web/20221207074555/https://www.sound4.com/ https://www.exploit-db.com/exploits/51259 https://www.vulncheck.com/advisories/sound-linkandshare-transmitter-format-string-stack-buffer-overflow https://www.zeroscience.mk/en/vulnerabilities/ZSL-2023-5744.php https://www.zeroscience.mk/en/vulnerabilities/ZSL-2023-5744.php

Benzer Kayıtlar

High

CVE-2022-50792

SOUND4 IMPACT/FIRST/PULSE/Eco versions 2.x and below contain an unauthenticated file disclosure vulnerability that allow…

High

CVE-2022-50793

SOUND4 IMPACT/FIRST/PULSE/Eco

Critical

CVE-2022-50794

SOUND4 IMPACT/FIRST/PULSE/Eco versions 2.x and below contain an unauthenticated command injection vulnerability in the u…

High

CVE-2022-50795

SOUND4 IMPACT/FIRST/PULSE/Eco

Critical

CVE-2022-50796

SOUND4 IMPACT/FIRST/PULSE/Eco

Critical

CVE-2022-50696

SOUND4 IMPACT/FIRST/PULSE/Eco versions 2.x and below contain hardcoded credentials embedded in server binaries that cann…